For creating transparent proxy we need edit squid.conf and add iptables rules. Edit /etc/squid.conf file with your favorite editor, example vi vi /etc/squid.conf Add or change this lines. http_port…

A blog about cyber security topics.

Invoke-TmpDavFS - In Memory Powershell WebDav Server

3 votes and 0 so far on reddit

SecurityAdvice - Collection of advice to new IT security folks

It's a process that's become depressingly routine.

An ethical crisis in the digital forensics industry came to a head last week with the release of new details on Microsoft’s undocumented “Activities” API. A previously unknown trove of access and activity logs held by Microsoft allows investigators to track…

TL;DR Vendors are notorious for including and/or leaving behind Registry artifacts that could potentially be abused by attackers for lateral movement, evasion, bypass, and persistence. CLSIDs subke…

U.S. spending to safeguard the world’s atomic materials has dipped in recent years — and President Donald Trump plans to keep it that way.

The Wall Street Journal reported Monday that hundreds of outside software developers are scanning the inboxes of millions of Gmail users. Google "does little to police those developers," the paper reported.

Recently, Alex Theuma, from the SaaS Revolution Show, sat...

new mac malware targets the cryptocurrency community

Samsung phone owners are reporting that the stock Messages app is randomly sending texts and photos to other people.

Before it became a covert surveillance tool disguised as an outstanding browser extension, Stylish really was an outstanding browser extension. It bestowed upon its users nothing less than the power to change the appearance of the internet. Its extensive…

Introduction

Denoscription of how to backdoor PAM and exfiltrate credentials via DNS requests. Capture credentials FTW!

With much attention lately over North Korea and its evolving cybersecurity capabilities, we thought to cover a somewhat related topic. A couple of years back...